$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft File: vIYHvM59W9TtuRjN4bc0W4HmrR0.mft (raw, json) Hash identifier: fxfuGO9DHAgDxRd9CGt5SapimmUlXyRYl2vye6hRzgg= Subject key identifier: 81:E8:DB:B3:EC:BD:52:E5:E4:5C:84:55:4E:9C:2F:4F:3E:05:CF:86 Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft Manifest number: 0C9B Signing time: Thu 18 Sep 2025 18:24:28 +0000 Manifest this update: Thu 18 Sep 2025 18:24:28 +0000 Manifest next update: Thu 25 Sep 2025 18:24:28 +0000 Files and hashes: 1: vIYHvM59W9TtuRjN4bc0W4HmrR0.crl (hash: KMWlOcs5ryD5jsbhRZJR8HLFRb82uon/0jLmMDbUkr4=) 2: 8325B5147FE911F09A568E85C4F9AE02.roa (hash: XqdQSfz9/Zl7eYUBAr06CP3dhexiFqvZGJN1XSM9VAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489, serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Validity Not Before: Sep 18 18:24:28 2025 GMT Not After : Sep 25 18:24:28 2025 GMT Subject: CN=68cc4e5c-9c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5b:0d:45:2a:0f:07:60:6f:23:18:9b:d6:ea: a4:e9:69:55:6f:29:75:d5:9f:0c:8a:4a:68:76:9a: cb:27:ee:1f:10:25:9d:9f:81:df:0a:bf:70:f8:8a: da:49:ca:e8:cb:d1:ac:65:57:e7:5b:1e:d1:50:0f: c9:e0:b1:63:82:d7:27:6d:a9:d0:56:f3:ec:a6:42: 29:14:b8:79:3d:39:03:3b:41:b6:86:8b:41:bd:65: e5:e3:b2:a4:ec:6f:01:71:e7:02:8e:6b:85:05:0c: 11:97:c5:b1:28:db:42:56:74:5a:dd:2e:ce:4e:c2: d3:c0:10:36:18:d0:9c:8d:3e:29:52:22:82:7c:14: 8c:e9:55:bd:af:40:90:24:f1:88:22:19:2b:13:f0: bb:19:aa:20:19:d3:94:94:b3:5a:a0:96:73:0d:09: ff:7f:82:1c:38:b7:71:92:af:d8:41:65:69:ba:e2: 4b:70:d2:70:39:d9:ad:ce:10:36:01:1d:96:f3:f5: 98:6e:0f:1f:02:d1:f2:55:a8:45:7e:7a:26:1c:c2: de:fd:1c:e8:de:92:ed:5c:94:b1:3d:a9:3b:90:62: 78:ee:02:2f:30:56:64:5d:a6:c9:1d:f4:3f:f4:99: f7:f4:7d:3e:f0:f3:9f:21:b8:16:77:b3:25:e7:73: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E8:DB:B3:EC:BD:52:E5:E4:5C:84:55:4E:9C:2F:4F:3E:05:CF:86 X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:54:2d:cb:76:04:42:6d:b3:97:cc:96:42:33:d7:23:bd:9c: a7:c0:6a:e6:51:e8:df:ac:dc:e7:aa:57:4a:ef:8f:22:69:9a: 62:2f:ae:19:b8:5c:4a:34:26:d7:d9:b0:47:32:19:53:ad:d0: 1a:f5:61:2f:92:59:c4:d6:9c:3f:f4:93:07:0d:b0:3a:fa:52: 1f:15:2a:a3:ac:95:3a:bd:cb:a7:1b:08:e8:7d:c8:03:22:ba: 07:65:b3:22:e7:e1:22:43:1d:93:5c:f0:73:30:1b:1c:2f:71: 2b:65:1e:83:fb:a9:dc:72:31:86:d7:e2:f9:ec:6c:7e:16:5c: ad:3b:b2:55:5f:f2:77:b4:29:dd:6e:17:c7:4d:36:ea:a5:52: 2c:c0:c2:de:96:9c:29:42:3a:b1:e3:55:54:d4:a4:b3:6f:be: dd:18:67:d5:88:ec:95:0e:5b:08:45:27:52:45:15:fa:8d:1b: a8:3a:8e:be:13:60:ad:64:fd:0e:9d:e1:cf:61:1c:d5:e7:d9: 92:19:a3:01:91:b3:38:f9:58:d7:26:e3:5c:f3:80:4c:de:ba: a6:4d:ce:65:b7:9d:29:1d:dc:34:f6:02:19:21:f5:b3:96:59: d7:21:6a:78:96:06:1c:1e:f6:6e:ab:43:1d:8e:55:77:7d:65: 08:dd:f3:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjUwOTE4MTgyNDI4WhcNMjUwOTI1MTgyNDI4WjAYMRYwFAYD VQQDEw02OGNjNGU1Yy05YzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVsNRSoPB2BvIxib1uqk6WlVbyl11Z8MikpodprLJ+4fECWdn4HfCr9w+Ira Scroy9GsZVfnWx7RUA/J4LFjgtcnbanQVvPspkIpFLh5PTkDO0G2hotBvWXl47Kk 7G8BcecCjmuFBQwRl8WxKNtCVnRa3S7OTsLTwBA2GNCcjT4pUiKCfBSM6VW9r0CQ JPGIIhkrE/C7GaogGdOUlLNaoJZzDQn/f4IcOLdxkq/YQWVpuuJLcNJwOdmtzhA2 AR2W8/WYbg8fAtHyVahFfnomHMLe/Rzo3pLtXJSxPak7kGJ47gIvMFZkXabJHfQ/ 9Jn39H0+8POfIbgWd7Ml53MrTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHo27Ps vVLl5FyEVU6cL08+Bc+GMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjQ4OS8wQjM4NzlDQUZGOUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5 VHR1UmpONGJjMFc0SG1yUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeVC3LdgRCbbOXzJZCM9cjvZynwGrmUejfrNznqldK748iaZpiL64Z uFxKNCbX2bBHMhlTrdAa9WEvklnE1pw/9JMHDbA6+lIfFSqjrJU6vcunGwjofcgD IroHZbMi5+EiQx2TXPBzMBscL3ErZR6D+6nccjGG1+L57Gx+FlytO7JVX/J3tCnd bhfHTTbqpVIswMLelpwpQjqx41VU1KSzb77dGGfViOyVDlsIRSdSRRX6jRuoOo6+ E2CtZP0OneHPYRzV59mSGaMBkbM4+VjXJuNc84BM3rqmTc5lt50pHdw09gIZIfWz llnXIWp4lgYcHvZuq0MdjlV3fWUI3fP7 -----END CERTIFICATE-----Generated at Fri Sep 19 09:25:56 2025 by rpki-client